HomePentest-Tools.com Logo

Cisco Email Security Appliance AsyncOS TCP Flood Denial of Service Vulnerability CVE-2015-6321

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

A vulnerability in the network stack of Cisco AsyncOS for Email Security Appliance could allow an unauthenticated, remote attacker to exhaust all available memory, preventing the affected device from accepting new TCP connections.

Risk description

The vulnerability is due to improper handling of TCP packets sent at a high rate. An attacker could exploit this vulnerability by sending crafted TCP packets to the affected system.

Recommendation

See Vendor advisory.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Nov 6, 2015
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available